Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/621/k36l9rWmpLAq-4kAnLZvCV4q418.roa
File: k36l9rWmpLAq-4kAnLZvCV4q418.roa (raw, json)
Hash identifier: BeLgltxu+3WWiLukbwZbDKqzi9anLM/RcRGb+bwKtxo=
Subject key identifier: 93:7E:A5:F6:B5:A6:A4:B0:2A:FB:89:00:9C:B6:6F:09:5E:2A:E3:5F
Certificate issuer: /CN=E56DA4C275F3CCC92D086202A1EDA7783F0C3D0D
Certificate serial: 1023
Authority key identifier: E5:6D:A4:C2:75:F3:CC:C9:2D:08:62:02:A1:ED:A7:78:3F:0C:3D:0D
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/k36l9rWmpLAq-4kAnLZvCV4q418.roa
Signing time: Wed 24 May 2023 03:55:18 +0000
ROA not before: Wed 24 May 2023 03:55:18 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 58854
IP address blocks: 103.27.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:23:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4131 (0x1023)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E56DA4C275F3CCC92D086202A1EDA7783F0C3D0D
Validity
Not Before: May 24 03:55:18 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=937EA5F6B5A6A4B02AFB89009CB66F095E2AE35F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ff:fb:9c:a4:ea:29:f0:63:8b:e4:92:dd:12:
76:f1:9b:a1:21:73:d2:79:ab:a4:f5:af:ef:5c:a3:
59:65:c4:11:6a:ad:f8:81:c4:72:1e:86:cb:e1:cd:
26:6b:ad:b1:e4:d3:ef:1b:ea:74:c4:6b:ea:ba:5d:
51:fa:b7:31:a2:3d:45:0b:51:2b:62:aa:99:a5:76:
e4:fd:8d:88:b9:cb:7c:29:2e:c3:91:2e:fb:35:57:
f3:81:79:55:ef:20:48:cf:01:58:44:04:c6:b7:b6:
27:38:c2:6a:0a:cc:ac:d9:46:88:34:d4:81:60:da:
f2:b9:d2:f2:3c:ce:a3:5f:d4:e4:41:c5:42:b2:ac:
14:04:69:6a:62:10:26:a5:71:9b:b3:24:37:45:7b:
92:b0:04:c2:b1:89:99:11:4d:e8:52:58:da:9c:48:
d0:41:2e:3e:17:59:3e:02:40:83:0e:63:7a:b4:a9:
c6:64:69:17:80:f5:3f:f0:72:41:f6:54:71:14:02:
54:b6:a3:70:94:e7:5e:56:36:df:d6:e7:c9:85:35:
eb:7c:3b:cf:c3:65:36:08:7e:2c:7b:2d:ce:1d:c8:
1d:7c:d4:c7:69:4e:2c:e8:10:f2:d1:d8:9f:bb:33:
23:f4:2a:69:2e:db:48:a2:56:f7:fc:2b:03:65:59:
25:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:7E:A5:F6:B5:A6:A4:B0:2A:FB:89:00:9C:B6:6F:09:5E:2A:E3:5F
X509v3 Authority Key Identifier:
keyid:E5:6D:A4:C2:75:F3:CC:C9:2D:08:62:02:A1:ED:A7:78:3F:0C:3D:0D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/k36l9rWmpLAq-4kAnLZvCV4q418.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.27.4.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:a4:68:cc:6a:47:46:e5:a6:ca:49:8d:da:dc:69:74:ad:ef:
da:05:da:be:fb:7b:0f:04:8c:9f:25:24:de:92:cc:ba:ad:cc:
21:05:bf:74:b9:e3:57:29:34:13:3f:86:b5:74:87:7c:16:9f:
9a:25:77:10:a2:0a:5b:a3:3b:68:6d:58:20:9b:97:8a:98:bf:
c9:16:ff:a0:b3:8b:cf:97:76:ec:11:3f:14:7b:91:37:b3:8a:
bd:15:41:36:30:3b:99:54:aa:84:6f:5a:b5:7e:a8:33:e1:28:
c6:4b:32:7e:a6:f2:89:54:d6:45:d1:6e:1d:d9:03:09:4f:35:
36:33:f1:8e:d2:62:fc:86:ef:7b:35:94:2a:d5:77:0b:28:3a:
c3:31:88:e4:e9:d5:01:b2:7a:16:87:c6:61:b0:c4:50:99:38:
14:23:58:16:6e:01:c8:0e:38:f2:f1:b7:bf:2b:df:ea:09:9b:
d5:b8:f8:1d:ca:b2:57:8d:d3:be:61:17:9d:d1:f9:f5:b9:80:
cc:ea:34:21:5b:88:58:37:4c:89:43:ad:2a:e1:9c:44:fc:9a:
dc:8c:25:1e:d6:1f:68:09:2c:5d:e1:4a:32:fe:8b:f1:98:26:
70:fc:82:14:3f:56:ef:c3:6e:39:87:6b:75:c1:2c:2a:9a:34:
a0:34:73:b3
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICECMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTU2
REE0QzI3NUYzQ0NDOTJEMDg2MjAyQTFFREE3NzgzRjBDM0QwRDAeFw0yMzA1MjQw
MzU1MThaFw0yNDAzMjcwMTEzMTBaMDMxMTAvBgNVBAMTKDkzN0VBNUY2QjVBNkE0
QjAyQUZCODkwMDlDQjY2RjA5NUUyQUUzNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDo//ucpOop8GOL5JLdEnbxm6Ehc9J5q6T1r+9co1llxBFqrfiB
xHIehsvhzSZrrbHk0+8b6nTEa+q6XVH6tzGiPUULUStiqpmlduT9jYi5y3wpLsOR
Lvs1V/OBeVXvIEjPAVhEBMa3tic4wmoKzKzZRog01IFg2vK50vI8zqNf1ORBxUKy
rBQEaWpiECalcZuzJDdFe5KwBMKxiZkRTehSWNqcSNBBLj4XWT4CQIMOY3q0qcZk
aReA9T/wckH2VHEUAlS2o3CU515WNt/W58mFNet8O8/DZTYIfix7Lc4dyB181Mdp
TizoEPLR2J+7MyP0Kmku20iiVvf8KwNlWSX9AgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUk36l9rWmpLAq+4kAnLZvCV4q418wHwYDVR0jBBgwFoAU5W2kwnXzzMktCGIC
oe2neD8MPQ0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIx
LzVXMmt3blh6ek1rdENHSUNvZTJuZUQ4TVBRMC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNVcya3duWHp6TWt0Q0dJQ29lMm5lRDhNUFEwLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIxL2szNmw5cldtcExBcS00
a0FuTFp2Q1Y0cTQxOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABnGwQwDQYJKoZIhvcNAQELBQADggEBAL2kaMxqR0blpspJjdrcaXSt79oF2r77
ew8EjJ8lJN6SzLqtzCEFv3S541cpNBM/hrV0h3wWn5oldxCiClujO2htWCCbl4qY
v8kW/6Czi8+XduwRPxR7kTezir0VQTYwO5lUqoRvWrV+qDPhKMZLMn6m8olU1kXR
bh3ZAwlPNTYz8Y7SYvyG73s1lCrVdwsoOsMxiOTp1QGyehaHxmGwxFCZOBQjWBZu
AcgOOPLxt78r3+oJm9W4+B3KsleN075hF53R+fW5gMzqNCFbiFg3TIlDrSrhnET8
mtyMJR7WH2gJLF3hSjL+i/GYJnD8ghQ/Vu/DbjmHa3XBLCqaNKA0c7M=
-----END CERTIFICATE-----
Generated at Wed Mar 13 04:11:40 2024 by rpki-client on console-ams.rpki-client.org